Security flaw allows attackers to inject malicious code into legitimate websites Cybersecurity researchers are warning of a surge in crypto wallet drainers being silently deployed through a vulnerability in the widely used React JavaScript library. The issue has been linked to an unauthenticated remote code execution flaw, allowing attackers to inject and run malicious scripts on affected websites without authorization. The vulnerability, identified as CVE-2025-55182, enables bad actors to compromise front-end code and embed wallet-draining logic into otherwise legitimate platforms, including crypto-related services and general websites. Once exploited, attackers insert obfuscated JavaScript that prompts users to unknowingly sign malicious transactions.…
Author: Blockto Team
Oracle misconfiguration enabled price manipulation across dormant DeFi options vaults Legacy DeFi Options Vaults (DOVs) originally launched by Ribbon Finance and later absorbed into Aevo were exploited on Dec. 12, resulting in losses of approximately $2.7 million. The affected vaults remained live on Ethereum despite Ribbons 2023 rebrand to Aevo, even as user activity had significantly declined from peak levels. Security researchers traced the exploit to a Dec. 6 oracle infrastructure upgrade. The update unintentionally allowed any user to set prices for newly added assets, opening the door to manipulation.Attackers injected arbitrary expiry prices for assets including wstETH, AAVE, LINK,…
Fed independence remains intact despite political pressure and leadership transition Kevin Hassett, a leading contender to become the next chair of the U.S. Federal Reserve, has pushed back against concerns that President Donald Trump’s views on interest rates could influence monetary policy. Hassett stressed that the Fed’s decision-making process is guided by data and collective judgment, not political preference. With a new Fed chair expected to be announced in mid-January, speculation has grown that the administration could seek greater influence over the Federal Open Market Committee (FOMC). Hassett dismissed those concerns, emphasizing that the committee’s 12 voting members hold the…
Bitcoin slides to two-week low amid weekend volatility and macro uncertainty Bitcoin faced renewed selling pressure over the weekend, briefly falling to $87,600, marking its lowest level in nearly two weeks. The decline followed a pattern of sharp Sunday sell offs seen repeatedly in recent weeks. After touching the low, Bitcoin managed a modest rebound, trading back above $89,000, though market sentiment remains cautious. The move lower comes after Bitcoin had been stabilizing following an early December pullback to $84,000, highlighting ongoing volatility despite broader bullish narratives. Michael Saylor Hints at Another Bitcoin Buy As prices dipped, Strategy chair Michael…
Month-old software flaw caused reduced participation and hundreds of ETH in missed rewards A recently disclosed issue in Ethereum’s Prysm consensus client led to a notable drop in network performance earlier this month, exposing risks tied to client software bugs. The problem originated from a code change introduced on test networks nearly a month before Ethereum’s upcoming Fusaka upgrad remaining dormant until conditions aligned on mainnet. On Dec. 4, Prysm nodes encountered severe resource exhaustion when handling attestations from out-of-sync validators. Instead of referencing the latest blockchain state affected nodes repeatedly recomputed prior epochs from scratch triggering heavy computational load.…
Crypto Industry Leaders Say Tokenized Attention Is the Real Innovation Memecoins may appear dormant after a sharp market downturn, but industry executives argue the sector is far from finished. Instead, memecoins are expected to re-emerge in a fundamentally different form, driven by their underlying technology rather than short-lived hype cycles. According to crypto infrastructure executives, memecoins were never truly about jokes or internet humor. Their core innovation lies in the ability to tokenize attention at low cost, allowing communities to directly capture economic value from engagement, trends, and cultural momentum. Blockchain technology enables this process in a way that was…
Community Debates Market Impact and Long-Term Network Resilience A renewed debate has emerged within the crypto community over the theoretical risk of quantum computers hacking early Bitcoin wallets, including the estimated 1 million BTC attributed to Satoshi Nakamoto. The discussion centers on whether such an event could destabilize Bitcoin markets or instead trigger a rapid recovery driven by long-term holders. Market analyst Willy Woo argues that even in an extreme scenario where a quantum-capable attacker gains access to Satoshi-era coins and attempts to sell them, early Bitcoin adopters and institutional holders would likely absorb the supply. According to this view,…
Exor Says Juventus “Values Are Not for Sale” Amid Stablecoin Expansion Efforts Juventus Football Club will remain under long-standing family control after its owner, Exor, formally rejected a binding all-cash takeover proposal from stablecoin issuer Tether. The offer would have valued the Italian football giant at just over €1 billion, marking one of the most ambitious attempts by a crypto-linked company to acquire a major European sports club. Exor, which holds a 65.4% controlling stake in Juventus, confirmed that its board unanimously dismissed the unsolicited bid and reiterated it has no intention of selling shares to any third party. The…
Malware-Based Attacks Have Already Stolen More Than $300 Million Cybersecurity experts are warning that fake Zoom meeting scams linked to North Korean hacking groups have escalated into a daily threat for crypto users, founders, and investors. These attacks rely on social engineering rather than technical exploits, making them especially effective against experienced industry participants. The scam typically begins with a message from a compromised Telegram account belonging to someone the victim already knows. After a brief conversation, the attacker suggests a Zoom call and shares a link that appears legitimate. During the call, pre-recorded videos of real people are used…
Risk-off sentiment, profit-taking, and technical rejection push BTC lower Bitcoin slipped to the $88,000 level, extending its recent pullback after failing to reclaim key resistance zones. The move reflects growing caution across risk assets, with traders responding to macro uncertainty, equity market weakness, and visible technical exhaustion following earlier highs. From a market structure perspective, Bitcoin encountered strong overhead resistance near the $92,000–$94,000 range, where multiple prior supply zones were concentrated. Repeated failures to sustain momentum above this area triggered sell side liquidity resulting in a sharp move lower. The breakdown confirms a short term bearish bias marked by lower…